$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2F80/94C54B80039511EF85B69F4EC4F9AE02/9BDEg6TIyRb_1M9CDEwRCIl5iJE.mft File: 9BDEg6TIyRb_1M9CDEwRCIl5iJE.mft (raw, json) Hash identifier: a3Eklue7x0Rl9mlqE5OYfRXD41NAtk4fvIcL8LnDImA= Subject key identifier: 42:37:F9:77:84:C4:1A:09:85:04:A6:7A:2C:3A:B1:BC:D7:17:2F:BA Authority key identifier: F4:10:C4:83:A4:C8:C9:16:FF:D4:CF:42:0C:4C:11:08:89:79:88:91 Certificate issuer: /CN=A91E2F80/serialNumber=F410C483A4C8C916FFD4CF420C4C110889798891 Certificate serial: 63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9BDEg6TIyRb_1M9CDEwRCIl5iJE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2F80/94C54B80039511EF85B69F4EC4F9AE02/9BDEg6TIyRb_1M9CDEwRCIl5iJE.mft Manifest number: 57 Signing time: Sun 15 Sep 2024 09:42:11 +0000 Manifest this update: Sun 15 Sep 2024 09:42:10 +0000 Manifest next update: Sun 22 Sep 2024 09:42:10 +0000 Files and hashes: 1: 9BDEg6TIyRb_1M9CDEwRCIl5iJE.crl (hash: U9c+ACTJ3UuZPz9YKraOJLMbmtDNsjuBgNhOAhC6WmY=) 2: DAC9D5960C7E11EF9A189E18C4F9AE02.roa (hash: 31H5Vhs+f/h3u06zcfDWH9AwqpcXpDRyJ5vXA17DcEI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2F80/94C54B80039511EF85B69F4EC4F9AE02/9BDEg6TIyRb_1M9CDEwRCIl5iJE.crl rsync://rpki.apnic.net/member_repository/A91E2F80/94C54B80039511EF85B69F4EC4F9AE02/9BDEg6TIyRb_1M9CDEwRCIl5iJE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9BDEg6TIyRb_1M9CDEwRCIl5iJE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Sep 2024 02:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 99 (0x63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2F80/serialNumber=F410C483A4C8C916FFD4CF420C4C110889798891 Validity Not Before: Sep 15 09:42:10 2024 GMT Not After : Sep 22 09:42:10 2024 GMT Subject: CN=66e6abf3-947c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:01:5c:ea:47:74:14:92:2d:62:5b:3d:f7:78: f2:f7:09:e0:79:d2:9d:a1:09:8c:e4:67:46:2c:47: 8a:3c:a7:76:57:1f:4b:17:ca:01:5d:24:a5:71:fb: fe:64:65:0c:77:a7:58:25:dd:13:6d:3b:19:a4:05: cc:80:18:9b:f1:59:4f:2b:38:13:0d:73:ba:10:15: 59:bd:39:ce:fd:18:32:86:d8:0e:c0:7d:a6:4b:b7: 77:95:66:6b:c7:ac:46:bd:e2:06:f4:0e:b1:21:47: f3:31:04:1d:8c:82:b9:3d:5f:e1:2e:2b:50:e1:20: f7:d5:a0:20:2a:2b:23:fa:51:d6:d8:92:08:ff:d7: 6e:65:33:aa:8b:74:ab:12:11:c9:96:50:0a:b9:76: 88:b4:55:ba:02:1d:97:4f:c1:77:42:cb:c0:c0:84: b5:45:00:ab:bd:a2:40:77:1d:e6:2a:31:f2:dc:c0: 27:d4:38:a1:e4:9c:6d:b5:cd:30:d4:26:bc:ad:4c: 0c:4d:a4:df:2b:7b:a9:4a:fd:e4:65:ce:52:eb:03: 7d:98:48:6d:6c:fa:57:3a:08:a6:34:6e:ca:00:09: 04:3f:6e:4c:cc:e3:1e:bb:b5:ca:69:41:dd:83:7a: 11:39:7a:02:89:d7:ff:a7:d3:7f:39:f1:4b:a1:17: 33:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:37:F9:77:84:C4:1A:09:85:04:A6:7A:2C:3A:B1:BC:D7:17:2F:BA X509v3 Authority Key Identifier: keyid:F4:10:C4:83:A4:C8:C9:16:FF:D4:CF:42:0C:4C:11:08:89:79:88:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2F80/94C54B80039511EF85B69F4EC4F9AE02/9BDEg6TIyRb_1M9CDEwRCIl5iJE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9BDEg6TIyRb_1M9CDEwRCIl5iJE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2F80/94C54B80039511EF85B69F4EC4F9AE02/9BDEg6TIyRb_1M9CDEwRCIl5iJE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:a0:cb:0e:9e:22:e3:66:6f:ce:d6:36:dd:48:a3:f3:e8:a1: be:7f:8f:78:ac:20:29:09:01:6d:e1:ea:76:ba:18:f1:2e:0b: 9e:f1:e6:83:24:b3:77:04:a2:70:59:ee:50:76:db:3b:a7:78: f2:19:58:7a:6b:42:49:5c:a1:7c:ff:46:bc:2e:c1:30:c8:aa: fd:1b:31:8f:a6:e1:7f:3c:18:a0:37:3e:cd:50:6e:ab:26:b2: 1d:5a:6a:7a:df:e3:57:9c:a3:cf:d5:40:28:7f:8a:73:4a:1a: cc:87:c8:44:85:9b:1a:21:44:d3:b5:75:f2:3d:6b:e5:ab:b4: e0:da:c1:f2:45:f8:dc:2a:d5:19:c5:cf:9d:a6:38:4a:40:8f: dd:b2:64:bd:fd:f8:3b:89:39:71:08:42:2f:2c:1a:17:27:21: 7b:ec:83:6c:a9:57:88:d2:c1:55:0d:a2:7e:85:97:d4:47:3b: 54:e6:33:a9:ec:6a:32:ba:d6:8d:2c:f6:50:c6:24:67:59:76: c5:c6:93:51:ba:14:de:96:0d:73:e2:f9:12:a2:46:ed:04:64: a8:81:89:f5:f2:8c:40:dd:97:58:bc:34:5e:58:84:dc:77:2f: b2:50:16:f1:e3:f8:56:e2:dd:06:68:23:62:ab:35:b0:98:eb: 19:5a:8f:e8 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MkY4MDExMC8GA1UEBRMoRjQxMEM0ODNBNEM4QzkxNkZGRDRDRjQyMEM0QzExMDg4 OTc5ODg5MTAeFw0yNDA5MTUwOTQyMTBaFw0yNDA5MjIwOTQyMTBaMBgxFjAUBgNV BAMTDTY2ZTZhYmYzLTk0N2MwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCyAVzqR3QUki1iWz33ePL3CeB50p2hCYzkZ0YsR4o8p3ZXH0sXygFdJKVx+/5k ZQx3p1gl3RNtOxmkBcyAGJvxWU8rOBMNc7oQFVm9Oc79GDKG2A7AfaZLt3eVZmvH rEa94gb0DrEhR/MxBB2Mgrk9X+EuK1DhIPfVoCAqKyP6UdbYkgj/125lM6qLdKsS EcmWUAq5doi0VboCHZdPwXdCy8DAhLVFAKu9okB3HeYqMfLcwCfUOKHknG21zTDU JrytTAxNpN8re6lK/eRlzlLrA32YSG1s+lc6CKY0bsoACQQ/bkzM4x67tcppQd2D ehE5egKJ1/+n03858UuhFzMDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUQjf5d4TE GgmFBKZ6LDqxvNcXL7owHwYDVR0jBBgwFoAU9BDEg6TIyRb/1M9CDEwRCIl5iJEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUyRjgwLzk0QzU0QjgwMDM5 NTExRUY4NUI2OUY0RUM0RjlBRTAyLzlCREVnNlRJeVJiXzFNOUNERXdSQ0lsNWlK RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvOUJERWc2VEl5UmJfMU05Q0RFd1JDSWw1aUpFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUy RjgwLzk0QzU0QjgwMDM5NTExRUY4NUI2OUY0RUM0RjlBRTAyLzlCREVnNlRJeVJi XzFNOUNERXdSQ0lsNWlKRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAOgyw6eIuNmb87WNt1Io/Poob5/j3isICkJAW3h6na6GPEuC57x5oMk s3cEonBZ7lB22zunePIZWHprQklcoXz/RrwuwTDIqv0bMY+m4X88GKA3Ps1Qbqsm sh1aanrf41eco8/VQCh/inNKGsyHyESFmxohRNO1dfI9a+WrtODawfJF+Nwq1RnF z52mOEpAj92yZL39+DuJOXEIQi8sGhcnIXvsg2ypV4jSwVUNon6Fl9RHO1TmM6ns ajK61o0s9lDGJGdZdsXGk1G6FN6WDXPi+RKiRu0EZKiBifXyjEDdl1i8NF5YhNx3 L7JQFvHj+Fbi3QZoI2KrNbCY6xlaj+g= -----END CERTIFICATE-----Generated at Sun Sep 15 10:46:26 2024 by rpki-client on console-ams.rpki-client.org